IETF Logo Mail Archive

Fwd: Confirmation to advance: draft-ietf-6man-ipv6only-flag-05

David Farmer <farmer@umn.edu> Tue, 07 May 2019 22:23 UTC

Return-Path: <farmer@umn.edu>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CCA1B12023B for <ipv6@ietfa.amsl.com>; Tue, 7 May 2019 15:23:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=umn.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jMQG3XtluaKs for <ipv6@ietfa.amsl.com>; Tue, 7 May 2019 15:23:21 -0700 (PDT)
Received: from mta-p6.oit.umn.edu (mta-p6.oit.umn.edu [134.84.196.206]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E23A3120236 for <ipv6@ietf.org>; Tue, 7 May 2019 15:23:20 -0700 (PDT)
Received: from localhost (unknown [127.0.0.1]) by mta-p6.oit.umn.edu (Postfix) with ESMTP id 3D245A0F for <ipv6@ietf.org>; Tue, 7 May 2019 22:23:20 +0000 (UTC)
X-Virus-Scanned: amavisd-new at umn.edu
Received: from mta-p6.oit.umn.edu ([127.0.0.1]) by localhost (mta-p6.oit.umn.edu [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id K2HireTbYnlG for <ipv6@ietf.org>; Tue, 7 May 2019 17:23:20 -0500 (CDT)
Received: from mail-vk1-f197.google.com (mail-vk1-f197.google.com [209.85.221.197]) (using TLSv1.2 with cipher AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mta-p6.oit.umn.edu (Postfix) with ESMTPS id EFF91945 for <ipv6@ietf.org>; Tue, 7 May 2019 17:23:19 -0500 (CDT)
Received: by mail-vk1-f197.google.com with SMTP id x77so8069142vke.14 for <ipv6@ietf.org>; Tue, 07 May 2019 15:23:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=umn.edu; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=zLavepj5S8VP5FRSxvmQMoHMA44EyI2S47iTzZtPBW0=; b=eBlc+CpjUORta+QpRcyxOdFjVOOl/+86tZkh4x3D1DbHyXad0dKtpgg23xm3dbpmKY E/3gbWXNqLNCOHuAbTu2DJPGezmQ0dVgHdA8ZfXlUCbMkhcPClwj58S9VrH/e8TpDdVi 7VHkO7RIfujLrhuoC3DeFExLlnoMVHK9bZWBz0ptLSF8MLWVQtlMQ8D2Ly0sMi1En0dP PbUw/yGUms1NdfSCwgRHV30kODETx2lrxPpdlq5KIo0jzKwIm7ov8ydce6KufYjLykcf wOkRUyJobQzVFOUElWMkLMr7hrgXm7KKvge29x931fDJAECUOSV+N4QWbOltqfO1SOua NhBw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=zLavepj5S8VP5FRSxvmQMoHMA44EyI2S47iTzZtPBW0=; b=nYJ/TRz0fNhKvhylE38x4gxzGU+iXwW6Q4HiMAQnLduP5np6PRF+Fk9RSH1FuEQh2z ZmjU8dggGxUv3X8q+GBMzb/t3LCBShVB88XsuvBT9Bxi0lM/Z5sUIZCDzBVuSm8aR/jk Oi6Lwq5iEQDGnO3+FlxVdXaPKogFxWvQRoHSrdEVQt0UTtC8BUDef6sVIxNs82qpO7wt c5ufjXIeCbyXA6QgIZ+RRWoFpFLKBtcbulv+4b0Ydgfar7tSEed8NvkmFY1UbROGb4pS fybNCRhZOwAezBL3Y07SmPrn3kuSndkE+P7mWWbas7lCBlgA4zXQ41xZie2BpQvqArNg U6BQ==
X-Gm-Message-State: APjAAAWel32zpKBELf6FFdpqvVDFlk8Q5HRPtsygSQZSuEqBa3qOUoCB acO8+oq2f2jmV9jOkucztGrDClgk/vhQuRZcVAgYAEnjhUry/aFIeVhFQK6ZEBDj2OfoZgpkbWh o/nzAyg0W/Edtx50r+SJLbuYe
X-Received: by 2002:ab0:5972:: with SMTP id o47mr9386300uad.133.1557267798978; Tue, 07 May 2019 15:23:18 -0700 (PDT)
X-Google-Smtp-Source: APXvYqxlw3sVwDSViaZF/594adIgiX+LwhpWuabZv734ZEciFEItZuj4yxV/h3ywsFuMwsL2nh9HBc7ckGu++GpdLhA=
X-Received: by 2002:ab0:5972:: with SMTP id o47mr9386275uad.133.1557267798526; Tue, 07 May 2019 15:23:18 -0700 (PDT)
MIME-Version: 1.0
References: <F8BFFCAD-E58E-4736-8A1C-56579B6F6032@employees.org> <alpine.DEB.2.20.1905070846120.1824@uplift.swm.pp.se> <5bf11ff3fb3b4ba88c33c23521d931e8@boeing.com> <CAN-Dau3BtudB5HM=1u72BExu_64teEDeO7i+aQXhk28Qc2u2vA@mail.gmail.com>
In-Reply-To: <CAN-Dau3BtudB5HM=1u72BExu_64teEDeO7i+aQXhk28Qc2u2vA@mail.gmail.com>
From: David Farmer <farmer@umn.edu>
Date: Tue, 07 May 2019 17:23:01 -0500
Message-ID: <CAN-Dau0Rv3YKg+rmwMK2yDOD0iDi-=bG0uGq0yNMTkLH7nAGBw@mail.gmail.com>
Subject: Fwd: Confirmation to advance: draft-ietf-6man-ipv6only-flag-05
To: 6man WG <ipv6@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000f3a348058853a991"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/PeCZEBhdVhkMZQd3p8pQYh3fUIQ>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 May 2019 22:23:23 -0000

Whoops, I lost the list somehow.

---------- Forwarded message ---------
From: David Farmer <farmer@umn.edu>
Date: Tue, May 7, 2019 at 5:13 PM
Subject: Re: Confirmation to advance: draft-ietf-6man-ipv6only-flag-05
To: Manfredi (US), Albert E <albert.e.manfredi@boeing.com>




On Tue, May 7, 2019 at 4:26 PM Manfredi (US), Albert E <
albert.e.manfredi@boeing.com> wrote:

> On Mon, 29 Apr 2019, Ole Troan wrote:
>
> > At the 6man meeting at IETF 104 in Prague there was support to close the
> working group last call and advance
> > draft-ietf-6man-ipv6only-flag-05 to the IESG.
> >
> > This call is to confirm that decision on the mailing list.
> >
> > Please give objections and comments to this decision to the mailing
> list, by 2019-05-13.
>
> I've not changed my mind on this. The flag seems unnecessary, and if
> anything, can cause confusion and problems. It seems to have been motivated
> by people wanting to see what it would be like to get all IPv4 users off
> the network, at an IETF meeting, and then people have been trying to make
> the case that it would be generically useful.
>
> There are other ways of sunsetting IPv4 if a network wants to, exactly the
> same as any number of older network protocols have been obsoleted, never
> needing any new explicit flag for the purpose. And I would way prefer for
> equipment vendors themselves, such as smartphone vendors, to create their
> own heuristics, if they feel that IPv4 is so wasteful of battery power. The
> onus should be on them, IMO, not on the IETF, and certainly not on other
> users of the network who might not know or pay attention to that flag.
>
> The KISS principle holds. Only add complications if it's essential.
>

The two alternatives to this flag I've heard discussed are;

1. Layer 2 filtering of Etherthypes 0x0800 and 0x0806
2. RFC2563 to signal host to not use Link-local IPv4

The problem is, these two options are incompatible with each other. You can
either block IPv4 traffic or signal the host that not to use Link-local
IPv4, you really can't do both at the same time.

I just had a thought, what if the host behavior for the flag was changed to
be more like the behavior specified for RFC2563?

In the presence of the flag, a host MAY attempt DHCPv4 a limited number of
times, but MUST NOT perform Stateless Auto-Configuration of an IPv4 address
and MUST NOT perform any service discovery (such as mDNS) unless it
receives a unicast IPv4 address from DHCPv4 server or relay on the network.

This way a Rogue RA with this flag set is much less dangerous than a Rouge
DHCPv4 server and doesn't directly impede IPv4 internet access. It would
impede Link-local IPv4, but only if there is not a functioning DHCPv4
server or the attacker can also block the DHCPv4 process in addition to
announcing a rogue RA with the flag set.

Would that be acceptable?

-- 
===============================================
David Farmer               Email:farmer@umn.edu
Networking & Telecommunication Services
Office of Information Technology
University of Minnesota
2218 University Ave SE        Phone: 612-626-0815
Minneapolis, MN 55414-3029   Cell: 612-812-9952
===============================================


-- 
===============================================
David Farmer               Email:farmer@umn.edu
Networking & Telecommunication Services
Office of Information Technology
University of Minnesota
2218 University Ave SE        Phone: 612-626-0815
Minneapolis, MN 55414-3029   Cell: 612-812-9952
===============================================

v2.23.0 | Report a Bug | By Email